Merge "Multi-tenant - Dex-aio workload-target phase"

manifests/type/multi-tenant/target/workload/dex-aio/README.md

@@ -0,0 +1,17 @@
+# DEX-AIO Workload Service
+
+The "*kustomization*" of dex-aio service is achieved through replacement transformer and patches.
+The rationale for supporting two different kustomization approaches is values for Dex service are shared with its corresponding API server.
+The replacement transformer/catalogue avoids duplication of variables/values avoiding configuration errors (DRY: Don't Repeat Yourself principle).
+The LDAP values are only used for the LDAP backend so supporting through patchesStrategyMerge avoids "complexity", e.i., the need to support a catalog + replacement rules.
+
+## Dex Dependent Variables/Values
+Dex dependent values are collected in a catalogue located at *manifests/function/treasuremap-base-catalogues/utility.yaml*.
+Some of these values are common to the Dex service and API Server/OIDC flags (DRY principle).
+
+Dex values are substituted using replacement transformer and the replacement rules for the Dex service can be found in *manifests/function/dex-aio/replacements*.
+
+> NOTE: The replacement transformer is invoked in *treasuremap/manifests/type/multi-tenant/target/workload/replacements/kustomization.yaml*.
+
+## LDAP Dependent Variables/Values
+The LDAP dependent values are kustomized through the *patchesStrategyMerge* and the values for the LDAP backend can be found in *./dex-aio-helm-patch.yaml*.

manifests/type/multi-tenant/target/workload/dex-aio/dex-aio-helm-patch.yaml

@@ -0,0 +1,19 @@
+apiVersion: helm.toolkit.fluxcd.io/v2beta1
+kind: HelmRelease
+metadata:
+  name: dex-aio
+  namespace: default
+spec:
+  values:
+    params:
+      ldap:
+        bind_password: "your LDAP bind password"
+        name: "LDAP TEST SERVICES - MULTI-TENANT"
+        config:
+          host: "your LDAP FQDN"
+          bind_dn: "your LDAP bind username"
+          username_prompt: SSO Username
+          user_search:
+            base_dn: dc=testservices,dc=test,dc=com
+          group_search:
+            base_dn: ou=groups,dc=testservices,dc=test,dc=com

manifests/type/multi-tenant/target/workload/kustomization.yaml

@@ -7,3 +7,7 @@ resources:
   - ../../../../function/helm-chart-repository/
   - ../../../../function/local-storage
   - ../../../../composite/lma-infra
+  - ../../../../function/dex-aio
+
+patchesStrategicMerge:
+- dex-aio/dex-aio-helm-patch.yaml

manifests/type/multi-tenant/target/workload/replacements/kustomization.yaml

@@ -1,6 +1,7 @@
 resources:
   - ../../../../../composite/storage-cluster/replacements
   - ../../../../../function/ingress/replacements
+  - ../../../../../function/dex-aio/replacements
   - ../../../../../function/sip/replacements
   - ../../../../../function/synclabeller/replacements
   - ../../../../../function/vino/replacements